Proofpoint Security

Before using Proofpoint Enterprise DLP , I used a different solution for the same use cases. DLP  is available with Defender, and the old name of Defender was Exchange Online  Protection. It is also available with some other email security gateways, but I have mostly worked with Microsoft Defender and Exchange Online  Portal. They have DLP  features available where we can create DLP policies and apply them. Microsoft Defender was recently introduced in place of that, and it offers DLP, sensitive labels, information protection, and some other options as well. I have used not only Proofpoint but some other platforms as well.

The reason I decided to switch from the previous solution was not my decision. I shifted to a new employer. I was with a different employer earlier where they had the Microsoft solution for everything. When I switched the company, I saw that they were using Proofpoint for DLP solutions, and it is good. It does not matter as long as your requirements and needs are being fulfilled.

The most valuable features or capabilities of Proofpoint Enterprise DLP  are those on which I have mostly been involved on the policy implementation side, where we protect our sensitive information such as credit card, legal information such as PAN or any ID proof details, and some dictionary keywords. There are also some filters that are applied for checking the email body and subject line. If the email is carrying any sensitive word which should not go outside, such as abusive words, and also some non-familiar and unreputed sentences, we can prevent them from being delivered anywhere outside or inside the organization. That is where we find it very useful.

We have a unified admin console where we create the policy, monitor the alert, and investigate if any incident occurs. It helps a lot. There are some automated reports being generated, and that also helps us to recognize the potential cause of the issue and to find out what policy we can create or where we should alter the policy or make the changes. We are constantly connecting with the world as well as tending to things which are going in the market and also potential threats which are popular in the market. We are following the trends and also updating the policy according to the current problems and situations we have.

My assessment of the effectiveness of Proofpoint Enterprise DLP in detecting and preventing data loss through the analysis of user behavior and content reflects that generally users do not have that much awareness about what type of sentences we should avoid. Although there are a lot of training and data available which is part of the onboarding for all the users, I am not sure if they seriously take those trainings. Being part of the messaging team and being an administrator, it is our duty to put everything and all policies right in place, covering all the potential threats and also covering everything to avoid any loss of data or avoid any cause of the issue which can harm the business or the reputation of the company.

The unified platform aspect of Proofpoint Enterprise DLP is very important for my organization. Whatever policy we create, whatever monitoring we do, and also reviewing the incidents, logs, and audits, everything is available on the unified admin console. That plays a very key role, a very important role for doing these practices and protecting the information for our organization. That is the one place where we always go and check the things. That is the one place where we put the things and change the things. Majorly if we see for DLP, the unified admin console is one of the very important and a primary admin portal from where we should manage the things and monitor the things.

My impression of Proofpoint Enterprise DLP's ability to monitor problematic Copilot use is that some improvements are still required on that part because I believe it is not so matured yet and the new features are being implemented. I am sure Proofpoint has done deep research before they introduce this feature, but still there is a long way to go. They need to learn slowly what things can be involved in the Copilot, what things we can make independent and automated tasks over there, how agents can perform the task in the background, what things we can give them in their control to manage the things, how the monitoring things can happen, and how we can automate certain tasks which we are doing on a daily basis for the monitoring purpose as well as doing the analysis of the incidents. I am also not so expert on the Copilot, but whatever I have learned so far in the last one year, I started using a Copilot mechanism not only on Proofpoint but also from other platforms.

I would like Proofpoint Enterprise DLP to improve a few more search filters. There are only few search filters such as the email body and some dictionary words involved, but I would recommend adding more words such as personal information, country-based ID proof information, and digits limitations. What digit limit the major countries have such as US, UK, India, and China and some other companies should be considered. Proofpoint should work on that part and figure out what filters and what search options should be provided, what other dictionary words can be added, and what other predefined policies can be added there to select and create it quickly. Although there are so many things and we are using it quite comfortably, there is always scope for improvement and we should always do the research on what things can be improved. I found that while doing some editing in the information of sensitive information search and filters, the character limit sometimes causes issues. The US ID information is fine, but the other countries' ID information is not given there correctly. Those things can be sorted out. Even if I am not sure that I have the knowledge properly on that side, I just wanted to mention this point. I might have been missing or not aware about the exact process of doing those things or it might be available already, but I just wanted to point out and say that these things can be added. If it is already there, it is good and there is no need then.

I have been working with Proofpoint Enterprise DLP for only four years.

I would say Proofpoint Enterprise DLP is very reliable. I have not seen very big downtime from their side in the last four years. It was very rare when we saw any downtime announcement from their side. They always have some backup plan and always have some secondary server from where things can run smoothly. That is very good thinking and that shows how serious they are about the customer business, their operations, and their services. My experience has been so far very good. I have seen sometime with other platforms that were not up to the mark. They are also good, but when comparing things, it is not that much stable. Proofpoint always wins on that part when comparing from other platforms.

My experience with the technical support of Proofpoint Enterprise DLP is that I have not had much chance to communicate with this kind of scenario or concern. But whenever I raise any concern to them, we have direct contact available. We have few points of contact with whom we can directly communicate. If we are not getting the technical support response in time, we used to send emails or we have the contact number available for any emergency case or situation. We can contact them instantly and whoever is available in the shift, whether it is UK, US, or whatever shift is there, they instantly pick up the call or if they are not available, they tell us in the email how much time it is going to take in a reply. These things are good and I have not seen much problem on that part because the cooperation and the relationship with Proofpoint is very good and they have given every rightful detail and also point of contact information which can be used in emergency situations. That is what we use and so far it is good with no problem on there.

Adaptive information protection has influenced my organization's approach to data security in particular. Any company working globally and doing business globally has so many things to deal with. There are different partners, customers, and clients in business with the company. Companies at large scale having 100,000 plus users, every user has a different mindset and comes from a different background. I am sure they do not have that much knowledge about how to handle the communication part and how things can be handled when communicating with external or internal or any client or customer. This service or features plays a big role in protecting the information and protecting the sensitive details which are entered in the email body or somewhere in the emails as a subject, as a signature, or in any form. It is very important and obviously the requirement of this feature shows the seriousness of any company towards protecting the information of the users as well as the company data.

Proofpoint Enterprise DLP is deployed on cloud in my organization.

My impression of Proofpoint Enterprise DLP's ability to monitor problematic Copilot use is that some improvements are still required on that part because I believe it is not so matured yet and new features are being implemented and things are being introduced with that. I am sure Proofpoint has done deep research before they introduce this feature, but still there is a long way to go and they need to learn slowly what things can be involved in the Copilot, what things we can make independent and automated tasks over there, how agents can perform the task in the background, what things we can give them in their control to handle the things, how the monitoring things can happen, and how we can automate certain tasks which we are doing on a daily basis for the monitoring purpose as well as doing the analysis of the incidents. I am also not so expert on the Copilot, but whatever I have learned so far in the last one year, I started using a Copilot mechanism not only on Proofpoint but also from other platforms. I find it very useful and going forward in the future, it will be a great hand for an engineer or for an administrator to handle any situation or challenges. It can also play a major role for mitigating the problem very quickly and also avoid any issues happening before. That can pop up the things what is going on because humans always take time and it is not possible to work 24 into 7, but Copilot is something where which you can put in place and give the instructions and also give the access of the different applications, integrate the things and then you can sit back, relax and see the things how it is happening. Proofpoint Enterprise DLP is obviously going to play a major role in the future. Right now it is just beginning, but I am sure slowly and gradually the things will be improved and it will work a lot better. I would rate my overall experience with Proofpoint Enterprise DLP as a 9 out of 10.

We are using Proofpoint Enterprise DLP  for protecting customer information through email DLP , safeguarding sensitive data such as social security numbers and transaction card details. I'm working with a retail client, and this information is critical. Additionally, we have designed many classifiers to tag sensitive data which works well with our needs.

Proofpoint Enterprise DLP  integrated with our email gateway helps recall messages because they are not delivered and remain in quarantine. This offers the ability to act upon mistakenly sent emails, thereby safeguarding against potential data leaks. It provides peace of mind that sensitive information can be retrieved in case of an accidental send.

The best feature is that Proofpoint Enterprise DLP  has all kinds of protections, complying with GDPR, HIPAA, PCI, and SOX. It integrates seamlessly with Proofpoint's email protection solutions, Microsoft systems, and the entire Proofpoint ecosystem. It is a policy and people-centric product that effectively captures accidental data sharing and provides users an opportunity to revert emails. Moreover, it supports unified DLP policy applications across emails, cloud apps, users, groups, locations, and more. The solution is quite unified, risk-aware, and offers versatility in its deployment and adaptability to user behavior.

Proofpoint needs to improve in managing AI-related data loss as Microsoft provides better visibility and has enhanced integrations. The product is not yet proactive regarding emerging technologies such as AI, which could improve the generative aspects of the solution. Including AI would help detect non-set rule-based patterns, such as sensitive data in unconventional formats or languages that go undetected currently. If Proofpoint adds AI enhancements and generative capabilities, it would significantly offer more comprehensive protection.

I am using Proofpoint Enterprise DLP from the last 10 years and it is quite a strong product.

It's a quite stable product.

It's a scalable product. As it is a cloud-based product, we can create more sets of rules. We can create an archiving mailbox where the DLP-related things are stored. It's quite scalable.

Proofpoint support is consistently good. I have never seen any issues with their customer support and their technical engineers. They are quite effective.

I would rate customer support at nine out of ten.

We have evaluated Microsoft Purview . Microsoft Purview  is one of the biggest competitors. However, as we were customers of Proofpoint for email gateway, secure email relay, TAP, and TRAP, we were having a good experience. We chose Proofpoint Enterprise DLP for the DLP as it is one of the market leaders in the security field.

The initial setup was straightforward. It has a set of rules, set of identifiers, and set of classifiers. Later, we added our own customizations because every organization has different DLP demands. DLP cannot be a default solution for all organizations. We have some default policies for standard protection that were implemented initially. However, later we added our own policies.

The deployment process was quite effective. We had an engineer on board from Proofpoint. I would say the engineer on board was our technical account manager who gave us support wherever we were stuck. As it is a cloud-based solution, the deployment was quite easy.

Data loss cannot be calculated on the basis of revenue. Data breaches are the costliest events. If Proofpoint Enterprise DLP is safeguarding our environment, a single penny is worth it. Preventing such incidents, Proofpoint Enterprise DLP safeguards our data. Every penny is worth it.

The price is up to market standards because it's one of the market leaders. However, if it were to add AI capabilities, it would command a higher price point. Proofpoint Enterprise DLP is not a new company in terms of security. It's a market leader with extra edges and advantages. However, as the market changes, things evolve.

It is a cloud solution. We are in a hosted environment. We are hosting it with Proofpoint email gateway as well as integrating it with Microsoft Azure .

This integration is in-progress. We have not exposed this capability because we have another solution for that in our environment to capture the co-pilot-related aspects. However, I have heard about this feature and we will use it later.

I would rate this review at eight out of ten.

Something that stood out to me most from the seminar is how they are integrating AI with Proofpoint Enterprise DLP  and that is very interesting, especially in the current time where AI is affecting so much of data loss. I think that is a very good feature.

Something that we have been seeing recently in the company is how the users and the people at the company are using AI and how that can affect or sometimes leak company data, which is definitely not good in terms of client privacy. Something that can help us catch who is using AI, not company-affiliated AI, is crucial so that we can ensure privacy and protect client data.

The best features that Proofpoint Enterprise DLP  offers, based on what I learned from the seminar, include user behavior analysis, content and context awareness features, and cross-channel visibility with email, cloud, and endpoints all covered in one view. Adaptive risk scoring is valuable as well because it helps prioritize real threats instead of alert fatigue.

I feel that the features of Proofpoint Enterprise DLP  are good, especially for our company. Data is not just sitting in one place; it moves across, and having everything visible in one place gives us more visibility. Controls are stronger on access and this adds control on usage. For adaptive risk scoring, this is powerful because we can make context-aware decisions.

I feel Proofpoint Enterprise DLP  is quite advanced, but there are a few areas for improvement. Since I am in IAM , stronger IAM  integration could help us or more transparency in AI decisions and AI-driven risk scoring would be beneficial. Better workflow automation so that we have to do less manual chasing would be good.

A smoother onboarding or learning curve would be something that would be helpful.

I have been working in my current field for about eight months.

I feel it appears to be highly scalable, especially for larger enterprises. It is cloud-native, handles high data volume, is centrally managed, and has elastic scaling. Overall, it does seem well-suited for large distributed environments.

I have heard that the customer support for Proofpoint Enterprise DLP is generally positive. Many use cases report the support to be responsive and helpful, and it is well-rated in the market as well. I believe it is good.

We have had exposure to Symantec DLP , which is more of a rule-heavy reactive approach compared to something more context-aware and proactive like Proofpoint Enterprise DLP features with better prioritization and efficiency for analysis.

Based on what I learned, I feel Proofpoint Enterprise DLP appears quite effective, especially because it combines user behavior and context awareness rather than relying on static rules alone. Its real strength is shifting DLP from reactive detection to more proactive risk identification, though its effectiveness would still depend on how well it is integrated and tuned within the organization.

I am not sure if I am in a position of giving advice to others looking into Proofpoint Enterprise DLP, but I would say to treat it as a strategic and context-aware DLP tool and not just as a regular rule engine. I feel that they will get much better results.

I definitely feel time would be saved because most of the regular routine tasks will be automated. That is a plus.

Adaptive policy enforcement basically means policies do not act the same way for every user or every situation. For an analyst, it will allow them to focus on high-risk incidents while automating routine decisions.

The unified platform aspect of Proofpoint Enterprise DLP improves visibility, reduces complexity, and makes security operations more effective.

Proofpoint Enterprise DLP sounds to be great software, and it feels to me that it is a strong shift in how DLP is evolving. Instead of just enforcing rules, it is moving forward, understanding user behavior and intent, which is much closer to how real data risks happen. If implemented well, it is less about blocking everything and more about making smarter risk-based decisions, which is where I think DLP needs to go. I would rate this review a seven out of ten.

My main use case for Proofpoint Enterprise DLP  is data protection, which I rely on most in my day-to-day work.

An example of how I use it for data protection in my work would be to prevent inaccurate sending of data or incorrect recipients, potentially mass mail outs to the wrong mail group.

The best features Proofpoint Enterprise DLP  offers, which stand out to me, are the ease of use and integration into the current email gateway.

The ease of use is evident as it makes detection easier and reduces time and triage effort.

Proofpoint Enterprise DLP  has impacted my organization positively by being advantageous for us in terms of reduced impact from personal information leaving the organization.

Proofpoint Enterprise DLP  can be improved; the UI can always use work, but I don't have any real frustration points at the moment.

I have been using Proofpoint Enterprise DLP for about a year.

Proofpoint Enterprise DLP appears to be stable; I haven't seen any reliability issues.

Proofpoint Enterprise DLP's scalability has met my needs as my organization grows.

The customer support I've experienced has been pretty good so far.

I did not previously use a different solution before Proofpoint Enterprise DLP.

I have seen a return on investment since using Proofpoint Enterprise DLP; it has reduced triage time.

My experience with pricing, setup cost, and licensing is that it all seemed pretty straightforward.

I assess the effectiveness of Proofpoint Enterprise DLP in detecting and preventing data loss through the analysis of user behavior and content as effective, as it stops information from being sent inaccurately.

Adaptive policy enforcement aids my analysts in responding to data risk with greater accuracy by speeding up triage time.

The unified platform aspect of Proofpoint Enterprise DLP is important for my organization; it is handy and makes sense for us to have it within the email gateway, which increases efficiency from that perspective.

My advice to others looking into using Proofpoint Enterprise DLP is that overall, it seems good and does what it says on the tin. Overall, I think Proofpoint Enterprise DLP is a good product; it prevents data loss effectively and does what it says on the tin. I would rate this product a seven out of ten.